CVE-2026-20007

Summary

A vulnerability in the Snort 2 and Snort 3 deep packet inspection of Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured Snort rules and allow traffic onto the network that should have been dropped.

This vulnerability is due to a logic error in the integration of the Snort Engine rules with Cisco Secure FTD Software that could allow different Snort rules to be hit when deep inspection of the packet is performed for the inner and outer connections. An attacker could exploit this vulnerability by sending crafted traffic to a targeted device that would hit configured Snort rules. A successful exploit could allow the attacker to send traffic to a network where it should have been denied.

Affected Software

VendorProductVersion RangeStatus
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.2affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.5affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.3affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.4affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.6affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.7affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.8affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.9affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.10affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.11affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.12affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.0.0affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.0.0.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.0.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.1.0affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.13affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.0.1.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.14affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.1.0.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.0.2affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.15affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.0affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.0.2.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.0.3affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.1.0.2affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.0.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.0.4affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.0.5affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.16affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.3.0affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.2affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.3affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.3.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.1.0.3affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.4affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.0.6affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.5affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.4.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.3.1.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.4.0affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.17affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.0.6.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.5.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.4.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.6affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.0.6.2affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.4.1.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software6.4.0.18affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.7affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.5.2affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.3.1.2affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.8affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.6.0affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.4.2affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.8.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.0.6.3affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.4.2.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.9affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.0.7affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.7.0affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.4.2.2affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.10affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.6.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.4.2.3affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.0.8affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.6.2affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.0.8.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.6.2.1affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.4.2.4affected
CiscoCisco Secure Firewall Threat Defense (FTD) Software7.2.10.2affected

Weaknesses

  • CWE-284: Improper Access Control

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References